Building and Automating Penetration Testing Labs in the Cloud: Set up cost-effective hacking environments for learning cloud security on AWS, Azure, a
Lat, Joshua Arvin
- 出版商: Packt Publishing
- 出版日期: 2023-10-13
- 售價: $2,010
- 貴賓價: 9.5 折 $1,910
- 語言: 英文
- 頁數: 562
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1837632391
- ISBN-13: 9781837632398
-
相關分類:
Amazon Web Services、Microsoft Azure、Penetration-test、資訊安全、駭客 Hack
海外代購書籍(需單獨結帳)
相關主題
商品描述
Take your penetration testing career to the next level by discovering how to set up and exploit cost-effective hacking lab environments on AWS, Azure, and GCP
Key Features:
- Explore strategies for managing the complexity, cost, and security of running labs in the cloud
- Unlock the power of infrastructure as code and generative AI when building complex lab environments
- Learn how to build pentesting labs that mimic modern environments on AWS, Azure, and GCP
- Purchase of the print or Kindle book includes a free PDF eBook
Book Description:
The significant increase in the number of cloud-related threats and issues has led to a surge in the demand for cloud security professionals. This book will help you set up vulnerable-by-design environments in the cloud to minimize the risks involved while learning all about cloud penetration testing and ethical hacking.
This step-by-step guide begins by helping you design and build penetration testing labs that mimic modern cloud environments running on AWS, Azure, and Google Cloud Platform (GCP). Next, you'll find out how to use infrastructure as code (IaC) solutions to manage a variety of lab environments in the cloud. As you advance, you'll discover how generative AI tools, such as ChatGPT, can be leveraged to accelerate the preparation of IaC templates and configurations. You'll also learn how to validate vulnerabilities by exploiting misconfigurations and vulnerabilities using various penetration testing tools and techniques. Finally, you'll explore several practical strategies for managing the complexity, cost, and risks involved when dealing with penetration testing lab environments in the cloud.
By the end of this penetration testing book, you'll be able to design and build cost-effective vulnerable cloud lab environments where you can experiment and practice different types of attacks and penetration testing techniques.
What You Will Learn:
- Build vulnerable-by-design labs that mimic modern cloud environments
- Find out how to manage the risks associated with cloud lab environments
- Use infrastructure as code to automate lab infrastructure deployments
- Validate vulnerabilities present in penetration testing labs
- Find out how to manage the costs of running labs on AWS, Azure, and GCP
- Set up IAM privilege escalation labs for advanced penetration testing
- Use generative AI tools to generate infrastructure as code templates
- Import the Kali Linux Generic Cloud Image to the cloud with ease
Who this book is for:
This book is for security engineers, cloud engineers, and aspiring security professionals who want to learn more about penetration testing and cloud security. Other tech professionals working on advancing their career in cloud security who want to learn how to manage the complexity, costs, and risks associated with building and managing hacking lab environments in the cloud will find this book useful.
商品描述(中文翻譯)
將您提供的文字翻譯成繁體中文如下:
將您的滲透測試職業提升到更高的水平,探索如何在AWS、Azure和GCP上建立和利用具有成本效益的黑客實驗室環境。
主要特點:
- 探索在雲端運行實驗室時管理複雜性、成本和安全性的策略。
- 在建立複雜實驗室環境時,發揮基礎架構即代碼和生成式人工智能的威力。
- 學習如何在AWS、Azure和GCP上建立模擬現代環境的滲透測試實驗室。
- 購買印刷版或Kindle電子書,可獲得免費PDF電子書。
書籍描述:
雲相關威脅和問題的顯著增加導致對雲安全專業人員的需求激增。本書將幫助您在雲端建立易受攻擊的設計環境,以最小化風險,同時學習有關雲端滲透測試和道德黑客的知識。
這本逐步指南首先幫助您設計和建立模擬在AWS、Azure和Google Cloud Platform(GCP)上運行的現代雲環境的滲透測試實驗室。接下來,您將了解如何使用基礎架構即代碼(IaC)解決方案來管理各種雲端實驗室環境。隨著進一步的進展,您將發現生成式人工智能工具(例如ChatGPT)如何加速準備IaC模板和配置。您還將學習如何使用各種滲透測試工具和技術,通過利用配置錯誤和漏洞來驗證漏洞。最後,您將探索幾種實用的策略,用於處理雲端滲透測試實驗室環境時所涉及的複雜性、成本和風險。
通過閱讀本書,您將能夠設計和建立成本效益的易受攻擊的雲實驗室環境,以便在其中進行不同類型的攻擊和滲透測試技術的實驗和練習。
學到什麼:
- 建立易受攻擊的實驗室,模擬現代雲環境。
- 了解如何管理與雲實驗室環境相關的風險。
- 使用基礎架構即代碼自動化實驗室基礎架構部署。
- 驗證滲透測試實驗室中存在的漏洞。
- 了解如何管理在AWS、Azure和GCP上運行實驗室的成本。
- 為高級滲透測試建立IAM特權升級實驗室。
- 使用生成式人工智能工具生成基礎架構即代碼模板。
- 輕鬆將Kali Linux通用雲映像導入雲端。
本書適合的讀者:
本書適合安全工程師、雲工程師和有志於學習更多關於滲透測試和雲安全的專業人士。其他希望在雲安全領域推進職業發展的技術專業人士,希望學習如何管理在雲端建立和管理黑客實驗室環境時所涉及的複雜性、成本和風險,也會發現本書有用。